summaryrefslogtreecommitdiffstats
path: root/modules-available/dozmod/pages/actionlog.inc.php
blob: eaa5218c75bd6ec81a38afb17f15fb392dc97da6 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
<?php

class SubPage
{

	private static $action;
	private static $uuid;

	public static function doPreprocess()
	{
		User::assertPermission("actionlog.view");
		self::$action = Request::get('action', '', 'string');
		if (self::$action !== '' && self::$action !== 'showtarget' && self::$action !== 'showuser') {
			Util::traceError('Invalid action for actionlog: "' . self::$action . '"');
		}
		self::$uuid = Request::get('uuid', '', 'string');
	}

	public static function doRender()
	{
		Render::addTemplate('actionlog-header');
		if (self::$action === '') {
			self::generateLog("SELECT al.dateline, al.targetid, al.description,
					img.displayname AS imgname, tu.firstname AS tfirstname, tu.lastname AS tlastname, l.displayname AS lecturename,
					al.userid AS uuserid, usr.firstname AS ufirstname, usr.lastname AS ulastname
					FROM sat.actionlog al
					LEFT JOIN sat.imagebase img ON (img.imagebaseid = targetid)
					LEFT JOIN sat.user usr ON (usr.userid = al.userid)
					LEFT JOIN sat.user tu ON (tu.userid = al.targetid)
					LEFT JOIN sat.lecture l ON (l.lectureid = targetid)
					ORDER BY al.dateline DESC LIMIT 500", array(), true, true);
		} elseif (self::$action === 'showuser') {
			self::listUser();
		} else {
			self::listTarget();
		}
	}

	private static function listUser()
	{
		// Query user
		$user = Database::queryFirst('SELECT userid, firstname, lastname, email, lastlogin,
				organization.displayname AS orgname FROM sat.user
				LEFT JOIN sat.organization USING (organizationid)
				WHERE userid = :uuid
				LIMIT 1', array('uuid' => self::$uuid));
		if ($user === false) {
			Message::addError('unknown-userid', self::$uuid);
			Util::redirect('?do=dozmod&section=actionlog');
		}
		// Mangle date and render
		$user['lastlogin_s'] = date('d.m.Y H:i', $user['lastlogin']);
		Render::addTemplate('actionlog-user', $user);
		// Finally add the actionlog
		self::generateLog("SELECT al.dateline, al.targetid, al.description,
				img.displayname AS imgname, usr.firstname AS tfirstname, usr.lastname AS tlastname, l.displayname AS lecturename
				FROM sat.actionlog al
				LEFT JOIN sat.imagebase img ON (img.imagebaseid = targetid)
				LEFT JOIN sat.user usr ON (usr.userid = targetid)
				LEFT JOIN sat.lecture l ON (l.lectureid = targetid)
				WHERE al.userid = :uuid
				ORDER BY al.dateline DESC LIMIT 500", array('uuid' => self::$uuid), false, true);
	}

	private static function listTarget()
	{
		// We have to guess what kind of target it is
		if (!self::addImageHeader()
				&& !self::addLectureHeader()) {
			Message::addError('unknown-targetid', self::$uuid);
			// Keep going, there might still be log entries for a deleted uuid
		}

		// Finally add the actionlog
		self::generateLog("SELECT al.dateline, al.userid AS uuserid, al.description,
			usr.firstname AS ufirstname, usr.lastname AS ulastname
			FROM sat.actionlog al
			LEFT JOIN sat.user usr ON (usr.userid = al.userid)
			WHERE al.targetid = :uuid
			ORDER BY al.dateline DESC LIMIT 500", array('uuid' => self::$uuid), true, false);
	}

	private static function mangleHtml($desc)
	{
		if (substr($desc, 0, 5) === '<html') {
			$desc = strip_tags($desc,
				'<strong><b><i><u><ul><li><font><span><p><div><hr><h1><h2><h3><h4><h5><h6>');
			$desc = preg_replace('/\b(on\w+|style)[\s\r\n]*=[\s\r\n]*(\'.*?\'|".*?"|[^\'"]\S*)/si', '', $desc);
		} else {
			$desc = nl2br(htmlspecialchars($desc));
		}
		return $desc;
	}

	private static function addImageHeader()
	{
		$image = Database::queryFirst('SELECT o.userid AS ouserid, o.firstname AS ofirstname, o.lastname AS olastname,
				u.userid AS uuserid, u.firstname AS ufirstname, u.lastname AS ulastname,
				img.displayname, img.description, img.createtime, img.updatetime,
				os.displayname AS osname
				FROM sat.imagebase img
				LEFT JOIN sat.user o ON (img.ownerid = o.userid)
				LEFT JOIN sat.user u ON (img.updaterid = u.userid)
				LEFT JOIN sat.operatingsystem os ON (img.osid = os.osid)
				WHERE img.imagebaseid = :uuid
				LIMIT 1', array('uuid' => self::$uuid));
		if ($image !== false) {
			// Mangle date and render
			$image['createtime_s'] = date('d.m.Y H:i', $image['createtime']);
			$image['updatetime_s'] = date('d.m.Y H:i', $image['updatetime']);
			$image['descriptionHtml'] = self::mangleHtml($image['description']);
			Render::addTemplate('actionlog-image', $image);
		}
		return $image !== false;
	}

	private static function addLectureHeader()
	{
		$lecture = Database::queryFirst('SELECT o.userid AS ouserid, o.firstname AS ofirstname, o.lastname AS olastname,
				u.userid AS uuserid, u.firstname AS ufirstname, u.lastname AS ulastname,
				l.displayname, l.description, l.createtime, l.updatetime, l.usecount, l.lastused,
				img.displayname AS imgname, img.imagebaseid
				FROM sat.lecture l
				LEFT JOIN sat.user o ON (l.ownerid = o.userid)
				LEFT JOIN sat.user u ON (l.updaterid = u.userid)
				LEFT JOIN sat.imageversion ver ON (ver.imageversionid = l.imageversionid)
				LEFT JOIN sat.imagebase img ON (img.imagebaseid = ver.imagebaseid)
				WHERE l.lectureid = :uuid
				LIMIT 1', array('uuid' => self::$uuid));
		if ($lecture !== false) {
			// Mangle date and render
			$lecture['createtime_s'] = date('d.m.Y H:i', $lecture['createtime']);
			$lecture['updatetime_s'] = date('d.m.Y H:i', $lecture['updatetime']);
			$lecture['lastused_s'] = date('d.m.Y H:i', $lecture['lastused']);

			$lecture['descriptionHtml'] = self::mangleHtml($lecture['description']);
			Render::addTemplate('actionlog-lecture', $lecture);
		}
		return $lecture !== false;
	}

	private static function generateLog($query, $params, $showActor, $showTarget)
	{
		// query action log
		$res = Database::simpleQuery($query, $params);
		$events = array();
		while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
			$row['dateline_s'] = date('d.m.Y H:i', $row['dateline']);
			if (isset($row['imgname'])) {
				$row['targeturl'] = '?do=dozmod&section=actionlog&action=showtarget&uuid=' . $row['targetid'];
				$row['targetname'] = $row['imgname'];
			} elseif (isset($row['tlastname'])) {
				$row['targeturl'] = '?do=dozmod&section=actionlog&action=showuser&uuid=' . $row['targetid'];
				$row['targetname'] = $row['tlastname'] . ', ' . $row['tfirstname'];
			} elseif (isset($row['lecturename'])) {
				$row['targeturl'] = '?do=dozmod&section=actionlog&action=showtarget&uuid=' . $row['targetid'];
				$row['targetname'] = $row['lecturename'];
			}
			$events[] = $row;
		}
		$data = array('events' => $events);
		if ($showActor) {
			$data['showActor'] = true;
		}
		if ($showTarget) {
			$data['showTarget'] = true;
		}

		Render::addTemplate('actionlog-log', $data);
	}

	public static function doAjax()
	{

	}

}